Yes, we expose X.509 extensions and that includes subject alternative name, which contains dNSName values. https://cryptography.io/en/latest/x509/reference/#cryptography.x509.SubjectAlternativeName
-Paul On Mon, Aug 18, 2025 at 3:00 PM Ross Vandegrift <[email protected]> wrote: > Hello, > > Does cryptography expose openssl's strings for subject alt name types > anywhere? Not sure if this has a name, but I mean the `DNS:` in: > > $ openssl x509 -in /etc/ssl/certs/ssl-cert-snakeoil.pem -noout -text > Certificate: > Data: > ... > X509v3 extensions: > ... > X509v3 Subject Alternative Name: > DNS:host.example.com > > I'm updating some old code from PyOpenSSL and unfortunately it exposes > that string to callers in an API. > > Thanks, > Ross > > PS- please CC me, I'm not subscribed. > _______________________________________________ > Cryptography-dev mailing list -- [email protected] > To unsubscribe send an email to [email protected] > https://mail.python.org/mailman3//lists/cryptography-dev.python.org > Member address: [email protected] >
_______________________________________________ Cryptography-dev mailing list -- [email protected] To unsubscribe send an email to [email protected] https://mail.python.org/mailman3//lists/cryptography-dev.python.org Member address: [email protected]
